Overview

overview

10

Static

static

10

26c68f1c56...18.exe

windows7-x64

10

26c68f1c56...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    26c68f1c56c894c7f630a2467c11dc76_JaffaCakes118

  • Size

    23.1MB

  • MD5

    26c68f1c56c894c7f630a2467c11dc76

  • SHA1

    42b41a5fb2bfc2e9c9e7e37ed0e79ea4acaf57a4

  • SHA256

    bf040babf45aa2bc489758748af1174364f225803e59b0acae2339cb9359bc4f

  • SHA512

    6fce1780a08500b5e149165133bf9b009399258ea682736c84b315241015201042a0b396153867508035bbcb75958b2808628fbea08465e14138942bf3ef7c8d

  • SSDEEP

    393216:TFgRYBzyzPpe1vDllrIyzWFgRYBzyzPpe1vDllrIyz3k:dzyT6vDllrBzkzyT6vDllrBz3k

Score
10/10
minerupxblackmoonxmrigprivateloader

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Privateloader family
    privateloader
  • XMRig Miner payload 1 IoCs
    miner
  • Xmrig family
    xmrig
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • 26c68f1c56c894c7f630a2467c11dc76_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections